PT-2017-16340 · Carlo Gavazzi · Vmu-C Pv+1

Karn Ganeshen

Published

2017-02-13

Updated

2019-10-03

CVE-2017-5144

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Carlo Gavazzi VMU-C EM versions prior to A11 U05 Carlo Gavazzi VMU-C PV versions prior to A17

Description An issue was discovered that allows access to most application functions without authentication due to an access control flaw.

Recommendations For Carlo Gavazzi VMU-C EM versions prior to A11 U05, update to firmware Version A11 U05 or later. For Carlo Gavazzi VMU-C PV versions prior to A17, update to firmware Version A17 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-5144

Affected Products

Vmu-C Em

Vmu-C Pv

PT-2017-16340 · Carlo Gavazzi · Vmu-C Pv+1

CVE-2017-5144

Related Identifiers

Affected Products

References · 3